Ransomware Decrypts Your Files For Free If You Infect Your Friends

Security
Observing, pondering, and writing about tech. Generally in that order.

Cybercriminals never stop looking for new ways to distribute the malware they create. Here's a novel new approach that was discovered this week. Ransomware authors will decrypt your files for free if you're willing to pass the infection along to your friends.

Image: Pexels

It couldn't be simpler. Instead of paying a Bitcoin ransom to the criminals, all you have to do is send a link to your friends. If two or more of them fall for the trap, you're off the hook. In one respect, anyway. You'll get your files back.

Law enforcement officials might want to have a chat with you, though, because willfully aiding someone in the distribution of malware is the kind of thing they tend to frown upon.

Bleeping Computer founder Lawrence Abrams reported on a ransomware strain called Popcorn Time (not to be confused with the Bittorrent-based video streaming app) that was discovered by MalwareHunterTeam. Abrams notes that Popcorn Time is not yet active in the wild. Based on the look he got at its code, there's still a lot of work left to be done. Critical communication functionality isn't finished, and a server on the TOR network that's referenced in the code doesn't appear to be online yet.

Image: Bleeping Computer

While the "affiliate scheme" the author has built into Popcorn Time is new, another feature of the ransomware is one that's been seen before

Enter an incorrect decryption key too many times and your files will be lost forever. Abrams says this "four strikes and you're out" scheme isn't working yet either, but be believes that anyone who would encourage victims to infect their friends, family, or colleagues would have no qualms about implementing it.

By now, hopefully you've set up a reliable system to back up your files. The best way to deal with a ransomware infection is still to start clean and restore your own files rather than depending on a criminal's code to properly decrypt them.

Sending a Bitcoin payment to a ransomware pusher only encourages them to continue looking for victims. And exposing your friends to ransomware? That's just plain twisted.

Lee started writing about software, hardware, and geek culture around the time that the Red Wings last won the Stanley Cup. The two aren't related in any way, however. When he's not catching up on tech news or blogging about it, you can find him watching or playing baseball...